Try our new research platform with insights from 80,000+ expert users
Key-Account-Manager at DATAKOM Gesellschaft für Datenkommunikation mbH
Real User
Integrates well with other solutions to enhance efficiency and transparency
Pros and Cons
  • "With the solution, we can uncover bottlenecks, streamline, and clean up our firewall rules."
  • "We would like to have a kind of "Time Capsule" to be able to restore to a certain state from a backup."

What is our primary use case?

AlgoSec helps us by giving an overview of our Layer 3 network devices. With the solution, we can uncover bottlenecks, streamline, and clean up our firewall rules.

How has it helped my organization?

AlgoSec saves our IT department a lot of time and also creates transparency. A large number of reports can be generated quickly. The reports are based on all known catalogs and are important for management and department heads. The products interlock and share relevant information with each other.

What is most valuable?

The most valuable feature is the interaction between AlgoSec's different solutions. From Firewall Analyzer to FireFlow to BusinessFlow, the solutions add value for us and our customers. The basis with the Firewall Analyzer and the corresponding Network Map is one of the core features for transparency.

The ticket system informs all of the people involved with respect to the next steps.

The reporting and documentation components help us to comply with the ISO catalog.

What needs improvement?

It is always possible to improve the product.

We would like to have a kind of "Time Capsule" to be able to restore to a certain state from a backup.

We would like to have a BSI Compliance Report for Germany.

Interfaces are worked on continuously, and small firewall manufacturers such as Sophos should still be included as standard.

Buyer's Guide
AlgoSec
November 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,406 professionals have used our research since 2012.

For how long have I used the solution?

More than eight months.

What other advice do I have?

All manufacturers on the market are constantly improving. The beautiful and simple thing about AlgoSec is the short distances and that you are heard. If you want a feature implemented, or a report for a certain country adapted or created, then they will take your request seriously right up to the C-Level. The implementation takes place promptly and is customer-friendly.

Disclosure: My company has a business relationship with this vendor other than being a customer: As a consulting and integration partner, we use AlgoSec products ourselves, but are also responsible for solution sales in the DACH market.
PeerSpot user
reviewer1114632 - PeerSpot reviewer
Works at a maritime company with 10,001+ employees
Real User
Firewall rule optimization and extensive reporting helps both with efficiency and compliance
Pros and Cons
  • "Breaking down a rule to specify used objects within groups and protocols has proven invaluable for us because we are able to narrow exposure to potential threats, and more generally, areas in which we are exposed."
  • "Some UI experience is a little clunky (for e.g. MAPS module) and could be made more user-friendly."

What is our primary use case?

The solution helps us to accurately determine rule use and where we can make improvements across our checkpoint firewall products. We had originally designed a few dozen clusters of firewalls that experience a heavy network flow with a multitude of rules, and it has been a doddle to harness the power of AFA to get the ball rolling.

How has it helped my organization?

AlgoSec has highlighted to us a huge number of unused rules and restored the confidence in us to remove them where appropriate. At the same time, it enables us to consolidate and enforce the point of reach prior to searching a rule base to check access for an application or user. Breaking down a rule to specify used objects within groups and protocols has proven invaluable for us because we are able to narrow exposure to potential threats, and more generally, areas in which we are exposed.

Reporting features are a godsend when it comes to executive review and monthly directorship calls.

What is most valuable?

Most of the features proved to be very useful within our massive setup, with some getting additional airtime during production changes. Our perimeter team uses the policy optimizer to search out unused objects in rules and determine when the rule was most recently hit accurately.

From my personal experience, the traffic simulator can be used to check if a request from a user or project is already a function enabled, or instead, we have an access change to implement. This saves an enormous amount of time during CAB calls.

The risk and compliance area is key to ensuring we conform to company regulation and our perimeter detection policy. Having a number of compliance options to baseline ensures that we get the basics right before looking at advanced risks and remediation.

What needs improvement?

Some UI experience is a little clunky (for e.g. MAPS module) and could be made more user-friendly.

We experienced some initial challenges with technical support, although this considerably improved once the teams got to know one another.

The API support isn't as versatile as we would like it to be. It needs more integration.

For how long have I used the solution?

Six months.

What do I think about the stability of the solution?

The product and appliances have been very stable.

What do I think about the scalability of the solution?

This solution has no problem with scalability and is easily able to integrate with firewalls in their thousands.

How are customer service and technical support?

We had some initial struggles due to communication, but once ironed out it was smooth sailing.

How was the initial setup?

Straightforward initially, and versatile well into production.

What about the implementation team?

We implemented this solution through our vendor.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
AlgoSec
November 2024
Learn what your peers think about AlgoSec. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,406 professionals have used our research since 2012.
reviewer1000023 - PeerSpot reviewer
Works with 10,001+ employees
Real User
Its ability to highlight filtering rules that would mask other more specific rules leads to an optimization of the system

What is our primary use case?

  • The flagship feature used is its correlation of filtering rules (ACL/firewall).
  • The audit of changes made in our environment is also very useful in the investigation of failure.

In an environment where onion layer security is strongly implemented, the filter elements can be configured in various places, and the traffic simulator proves, in this case, to be life-saving, whether in diagnostic time or in efficiency.

How has it helped my organization?

The AlgoSec solution has allowed us to achieve a clean-up and optimization of our filtering rules across our entire environment. The rules analysis allowed us to delegate the tool for operational purposes for the evaluation of firewall opening and audit requirements.

What is most valuable?

  • The filter rules correlator allows us not only to have a clear view of the blocking points but also the quality of the filtering performed on the various firewalls highlighted by their risk index.
  • Another interesting feature of the product is its ability to highlight filtering rules that would mask other more specific rules and thus lead to an optimization of the system.
  • AlgoSec also allows us to have a history of changes. This feature is especially useful in the event of an outage or an unwanted change.

What needs improvement?

Although I'm very satisfied with the product, one of the ways of improving the product could lie, perhaps, in the acceleration of the analysis process and especially in the section — traffic simulation query.

Another improvement would be the support of an orchestration of different firewalls in a heterogeneous environment, mainly at the level of the management of the objects so as to have a homogeneous nomenclature.

For how long have I used the solution?

More than five years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
AJC-2000 - PeerSpot reviewer
Security Consultant at Total System Services, Inc.
Real User
It has simplified rule optimisation and compliance.

What is our primary use case?

My organisation has used Firewall Analyser for many years to simplify and automate rule set management across an estate of hundreds of Checkpoint firewalls. Key functionality provided covers compliance reporting and identification of duplicate and unused, as well as risky rules.

How has it helped my organization?

Algosec is a game changer for our environment due to core functionality provided by Firewall Analyser. It has simplified rule optimisation and compliance. We are now building on this by deploying AlgoSec FireFlow which we expect to massively reduced the time and complexity around firewall change requests and approval. 

What is most valuable?

Compliance and risk reporting are the most valuable features of the product, closely followed by FireFlow, which builds on the analysis engine. I have also found the team to be engaging and customer focused.

What needs improvement?

I look forward to cloud service integration, which is coming in future releases and this should help make the product more of a complete solution. I would also like to see AlgoBot integrate with other communication systems such as Rocket Chat.

For how long have I used the solution?

One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1753230 - PeerSpot reviewer
Client Manager - TE Services at NTT Security
Real User
Good for managing firewall rules, offers extended support, and great for policy optimization
Pros and Cons
  • "Reporting helps us with deliverables, areas of focus for improvement, and much more."
  • "There could be certain improvements such as supporting secure email."

What is our primary use case?

We have a large setup of multi-vendor firewalls with large in numbers of policies and rules. Handling rules and policy visibility manually are very difficult for clients multi platform firewalls. AlgoSec AFA has eased day-to-day operation, firewalls rules optimization, clean-up for unused policies and reporting, and visibility on policy and rules. All of this improves the firewall performance.

AlgoSec FireFlow workflow change tracking in environment makes it easy to have a central repository also multiple stakeholder approved change management.   

How has it helped my organization?

The AFA workflow has helped us to manage firewall rules implementation using multiple stakeholders' approval with an end-to-end lifecycle of change management and tracking. 

Reporting helps us with deliverables, areas of focus for improvement, and much more. Algosec AFA is useful for policy optimization and clean-up and can measure capacity management. 

AFA provides greatly extended support for firewall rule review for risky rules, optimization, and clean-up for unused rules. 

Firewall rule automation for implementation also makes support easy for support firewall administrators.

What is most valuable?

AlgoSec currently has two useful features: AFA and AFF. 

The AFA workflow helped us to manage firewall rules implementation using multiple stakeholders' approval with an end-to-end lifecycle of change management and tracking. 

Algosec AFA is useful for policy optimization, cleanup, and measuring capacity management. 

AFA provides greatly extended support for firewall rule review for risky rules, optimization, and clean-up for unused rules. Firewall rule automation for implementation also makes support easy for support firewall administrators.

What needs improvement?

There could be certain improvements such as supporting secure email. We have some cases where the client SMTP /POP email system is discarded, which is very important factor change notifications.

Fireflow workflow rule/change implementation for time-based rules is not currently supported. 

These improvements in upcoming code will definitely help with end-to-end firewall rule implementation. 

NAT rule implementations were in the roadmap. We are expecting this soon. 

Certain optimization of AFA/AFF SMS resources would ease daily operations.

For how long have I used the solution?

I've used the solution for four years.

What do I think about the stability of the solution?

While stability is good, further improvement is needed.

What do I think about the scalability of the solution?

The scalability is good.

How are customer service and support?

Technical support is good.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

We did not use a different solution previously.

How was the initial setup?

Some changes in setup are ongoing as we are growing.

What about the implementation team?

I am a vendor partner of AlgoSec.

What's my experience with pricing, setup cost, and licensing?

The licensing is commendable.

Which other solutions did I evaluate?

We evaluated a few other options before positioning this solution. 

What other advice do I have?

The solution could use improved support.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1734915 - PeerSpot reviewer
Business Development Manager at Vibs
User
Detects malicious activity, has great audit reports, and provides monitoring via a single console
Pros and Cons
  • "Detection of malicious activities and malware is much better than other options."
  • "The blacklisting and whitelisting of IP addresses should be improved. There are many false positives."

What is our primary use case?

One of our customers was using basic firewalls and the VPN, however, much of the policies were not applied - hence there were a lot of loopholes and hence a lot of spam and malicious activities were going on in their organization. Employees were able to use blocked sites, IT managers were not able to address the issue on their own. 

The client replaced existing solutions with AlgoSec. AlgoSec has given better visibility and better performance. IT managers who [reviously could not find loopholes were able to address them. 

How has it helped my organization?

Detection of loopholes and pinpointing troubleshooting areas were the key value additions that AlgoSec has provided. Its response time is fast. 

Detection of malicious activities and malware is much better than other options. 

Previously, the company was dependent on third-party solutions for audit reports. AlgoSec now provides an instant audit report. 

It has improved the management of all the firewalls (which are both cloud and on-prem) via a single console. The integration with the routers and other IT products is seamless.

What is most valuable?

The most valuable aspect of the product is the automatic application connectivity. The second best feature would be detection and response and analysis of the data. Applying security policies over the network is easy. AlgoSec instantly provides audit reports which is a most useful feature in this organization. 

Integration of the next-gen firewall, cloud firewall, routers, and load balancers is seamless and a very useful feature.

The solution offers unified and risks analytics reports features. 

AlgoSec helps IT managers automate firewall management across all hybrid environments.

What needs improvement?

The blacklisting and whitelisting of IP addresses should be improved. There are many false positives.

The cloud migration process should be more streamlined for my customer-facing issues.

The price should be less. The customers who have just started using the AlgoSec firewall management tool, as of now, have not faced any major issues apart from some small debugging. 

Improvement can be done in many areas. For example, it would be great if AlgoSec could integrate with an endpoint solution and directly integrate with firewall and endpoint solutions to bring much more visibility.  

Disclosure: My company has a business relationship with this vendor other than being a customer: We are System Integrator
PeerSpot user
PeerSpot user
Resp. Area de Segurança at REN
Real User
AlgoBot checks if rules already exist or finds out easily where they need to be configured
Pros and Cons
  • "AlgoBot is a brilliantly, simple idea that lets us give our IT internal customers a way to check if rules are already in place before asking for more."
  • "The license rekeying needed for when you need to change a firewall usually takes a bit of time."

What is our primary use case?

Our main use cases for this solution are:

  • Firewall Rule optimization
  • Topology mapping of various firewalls
  • Automating the implementation of rules.
  • Reports warning before time based rules expire. 

We also implemented the AlgoBot, which is extremely useful when checking if rules already exist or finding out easily where they need to be configured.

We have 20-plus firewalls from multi-vendors in several sites, both IT and OT. Therefore, an automated way to manage firewalls is a must, especially since staff is always on the short side.

How has it helped my organization?

AlgoSec has saved us a lot of time in managing our rule base which has become increasingly large. With 20-plus multi-vendor firewalls, it gets really hard to manage without a solution like AlgoSec. This has helped us to fulfill our internal SLAs for change implementation.  

The fine tuning of the policies is a lot faster and repeatable. 

The compliance factor has also helped us a lot where we can show auditing that we have a repository for all the changes made in the firewalls, who made them, and at what time.

Gone are the days where time-based rules expire without anyone noticing. We have now automated reports sent to the team. This allows us to ask the involved asset owners if rules can be disabled or need to be extended.

What is most valuable?

Most valuable features are the firewall rule optimization, topology mapping, and automating the deployment of new rules in several multi-vendor devices. 

AlgoBot is a brilliantly, simple idea that lets us give our IT internal customers a way to check if rules are already in place before asking for more.

With firewall rule optimization, you cannot only tune most used rules higher in the rule base, but also check for unused objects or rules to clean up.

The automatic implementation of rules in several firewalls simultaneously is also a great feature, especially in large environments or on short staffed teams. 

What needs improvement?

AlgoBot should be more developed by adding more features to the chat.

We will be integrating with Cisco ACI soon. Hopefully, new features with this integration will be developed as well in terms of automation.

I came across a difficulty recently with a BGP enabled firewall that had a large number of routes. This wasn't directly supported due to a 3000 rule per firewall limit.

For how long have I used the solution?

We've been using AlgoSec for over six years.

What do I think about the stability of the solution?

It has been running flawlessly since installation. Even upgrades are pretty straightforward and have never given us problems.

What do I think about the scalability of the solution?

We have added 10 more firewalls to our 14 existing and have had no performance or scalability issues.

How are customer service and technical support?

We have had several tickets opened and the responses were fast. This enabled us to solve our problems quickly. The only complaint is about the license rekeying needed for when you need to change a firewall. That usually takes a bit of time.

Which solution did I use previously and why did I switch?

We did use a different solution for several years. The features and usability made us switch.

How was the initial setup?

If you are knowledgeable about the firewalls that you intend to manage, the initial setup is really easy. The most difficult steps are configuring checkpoints for LEA integration where you need to create the object in each firewall, establish connectivity, install the database, install the policy, etc.

What about the implementation team?

It was initially implemented through a vendor. Their level of expertise was good enough to implement the solution effortlessly.

What's my experience with pricing, setup cost, and licensing?

Cost is based on firewall. There are bundles, e.g., virtual firewalls might make the solution cheaper.

The licensing scheme should be done in a simpler way. For example, if we delete a firewall and want to add a new one, then the license doesn't get freed up automatically. You have to request a new license to customer support and install it. If you are testing new implementations, this can be cumbersome.

Which other solutions did I evaluate?

We evaluated the main competitor, Tufin, because we were using it!

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Paltxe - PeerSpot reviewer
Network Engineer at Schneider Electric
Real User
Comparison functionality and good reporting help improve visibility and keep us secure
Pros and Cons
  • "We have all of the information about the firewall devices that we have at risk, either because there is a firewall policy with some open protocol that can give us security problems later, or because long-unused rules present a security hole."
  • "It would be very helpful to have a direct link to the relevant firewall policy embedded within reports when there are warnings or risks indicated."

What is our primary use case?

Our first use case is the homogenization of important rules for a large number of firewall-enabled devices in our corporate network.

With one click, we have at our disposal everything we consider important and in this way we do not have to enter each device to verify the information.The AlgoSec Security Management Suite collects all of this information.

The most important thing is to have all of the information in one application. At a glance, we can see security problems and possible issues in the future. In this way, we can be proactive and solve problems before they happen.

How has it helped my organization?

With AlgoSec Security Management we have many advantages.

We have all of the information about the firewall devices that we have at risk, either because there is a firewall policy with some open protocol that can give us security problems later, or because long-unused rules present a security hole.

We have collected all of the alerts for each of the firewalls, which helps to identify devices that are in need of a more in-depth analysis.

What is most valuable?

The most valuable feature is the ability to compare policies with certain established and accepted configurations and values.

We have the option to generate several security reports for our firewall devices, such as what policies were created, what cluster they were created in, and which pose a risk either because they have been obsolete for a long time or because they have very specific technical specifications. Examples of this are open ports that are totally vulnerable or declared services that violate security.

All of the reports can be exported to PDF, meaning that we can send them to the different departments to study the cases and determine whether these rules are necessary. If not, then they can be eliminated to optimize the system.

What needs improvement?

It would be very helpful to have a direct link to the relevant firewall policy embedded within reports when there are warnings or risks indicated. Regardless of how serious the risk is, we could jump to the policy with a single click. In this way, the administration would be much easier and we would not have to be changing the screen every time we want to look at or modify something in our firewall. I understand that they are third-party software packages that can achieve this, but it would be more comfortable to have it integrated.

For how long have I used the solution?

We have been using AlgoSec for two or three years.

What do I think about the stability of the solution?

The stability of this solution is very good.

What do I think about the scalability of the solution?

Scalability is very good.

How are customer service and technical support?

We have had no problem with technical support. Different incidents have been resolved without major complications.

Which solution did I use previously and why did I switch?

The first solution that we used in this category was AlgoSec.

How was the initial setup?

The initial setup is not complex.

What about the implementation team?

Our in-house team performed the deployment with help from the vendor team. The expertise was good.

What's my experience with pricing, setup cost, and licensing?

The price is within the standard of security products.

Which other solutions did I evaluate?

We did not evaluate other options before choosing this solution.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros sharing their opinions.
Updated: November 2024
Buyer's Guide
Download our free AlgoSec Report and get advice and tips from experienced pros sharing their opinions.